$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa File: AS140002.roa (raw, json) Hash identifier: IprUahi+stutcWZR8ff9tog/iLXHqDsederf1LmAkjI= Subject key identifier: 2B:13:F1:98:A0:12:79:35:34:32:74:DB:35:B4:A9:7E:2B:91:24:27 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 549B70D40317605277CC0A7BAF66B9FF2D0CDA39 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa Signing time: Tue 01 Aug 2023 20:06:27 +0000 ROA not before: Tue 01 Aug 2023 20:01:27 +0000 ROA not after: Tue 30 Jul 2024 20:06:27 +0000 asID: 140002 IP address blocks: 103.148.78.0/24 maxlen: 24 203.119.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:9b:70:d4:03:17:60:52:77:cc:0a:7b:af:66:b9:ff:2d:0c:da:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 1 20:01:27 2023 GMT Not After : Jul 30 20:06:27 2024 GMT Subject: CN=2B13F198A0127935343274DB35B4A97E2B912427 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:07:46:4c:35:22:a8:5d:e5:70:f3:5f:97:28: af:4b:99:36:d4:28:00:83:db:ba:74:63:b3:a7:9c: 85:53:58:82:1a:7a:ac:9a:07:4f:a9:ad:59:2f:83: 7b:20:a1:1a:7f:ac:54:52:8c:d6:89:ff:c5:85:94: 4f:f1:6c:48:80:86:72:4c:23:35:56:4e:c0:d6:f3: 9d:b6:ad:ea:48:ba:15:ef:c4:b6:03:71:c7:31:d8: 7d:a6:2e:c8:4d:76:04:6b:75:c0:83:c7:13:08:25: fe:56:6c:60:02:4b:ea:df:d0:e3:ec:90:5c:15:41: a5:fa:be:50:e6:47:c6:af:b0:01:0f:9c:9a:c3:24: 3f:3e:d2:12:c9:66:fb:73:15:15:1f:8c:22:7c:57: 07:08:ec:ec:4e:78:be:db:3f:a1:17:40:3f:47:cf: 80:e5:ef:d9:55:c6:61:82:2c:06:60:a2:71:09:68: 32:ba:1b:b4:65:61:48:78:0c:61:55:28:2b:99:f0: 8c:58:14:99:21:64:95:95:55:70:64:c5:00:dd:c2: 98:17:ec:14:3e:52:e2:47:56:f0:a3:ea:5e:3b:77: f7:b2:e2:17:d4:fb:a0:e2:5a:30:7d:bb:46:24:fa: 43:33:72:ca:69:5a:b7:22:14:11:d0:e4:5f:6b:3e: 94:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:13:F1:98:A0:12:79:35:34:32:74:DB:35:B4:A9:7E:2B:91:24:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS140002.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.78.0/24 203.119.13.0/24 Signature Algorithm: sha256WithRSAEncryption 48:6e:68:9a:b9:ae:d2:6e:8f:a0:d6:69:d3:81:12:18:b1:26: 31:18:a5:cf:5b:3e:c6:42:3f:60:e4:cd:a4:cc:c0:83:2d:19: 18:1a:75:68:ee:75:b8:dc:62:31:ea:af:ee:44:a5:01:bb:0c: c1:4e:fd:29:99:83:59:9b:51:76:d8:30:b5:6e:d6:88:e1:07: 32:8a:c7:7d:13:89:bb:57:98:c8:9c:a7:df:00:dc:89:18:b5: 58:47:6a:73:a3:cb:d0:07:1e:de:60:2c:0d:e5:4e:f8:5c:30: ae:f1:92:d8:2e:e8:62:e7:0d:25:1b:35:93:f2:78:2f:ed:04: 2b:4d:60:43:0f:43:4e:7c:c2:21:7f:f9:cb:fb:91:bc:9c:88: 4d:1d:55:4b:ab:92:93:47:8b:18:a1:49:65:6f:ad:f1:10:1b: 30:d1:a3:ba:88:a6:ff:89:95:14:20:bf:c3:4b:03:f2:ab:c4: b8:2c:07:68:92:33:7e:cb:84:c6:41:68:2e:c1:f1:43:23:18: d4:60:5e:eb:59:e7:50:7a:c0:b6:81:a7:23:34:68:53:fc:07: f8:89:ac:52:67:5a:9a:98:a1:34:cf:d6:9e:a9:7f:35:fa:f1: 30:47:a0:12:8e:fd:10:75:4f:ef:14:be:cd:cc:21:f7:6d:29: 13:81:36:71 -----BEGIN CERTIFICATE----- MIIE4zCCA8ugAwIBAgIUVJtw1AMXYFJ3zAp7r2a5/y0M2jkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwMTIwMDEyN1oX DTI0MDczMDIwMDYyN1owMzExMC8GA1UEAxMoMkIxM0YxOThBMDEyNzkzNTM0MzI3 NERCMzVCNEE5N0UyQjkxMjQyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKcHRkw1Iqhd5XDzX5cor0uZNtQoAIPbunRjs6echVNYghp6rJoHT6mtWS+D eyChGn+sVFKM1on/xYWUT/FsSICGckwjNVZOwNbznbat6ki6Fe/EtgNxxzHYfaYu yE12BGt1wIPHEwgl/lZsYAJL6t/Q4+yQXBVBpfq+UOZHxq+wAQ+cmsMkPz7SEslm +3MVFR+MInxXBwjs7E54vts/oRdAP0fPgOXv2VXGYYIsBmCicQloMrobtGVhSHgM YVUoK5nwjFgUmSFklZVVcGTFAN3CmBfsFD5S4kdW8KPqXjt397LiF9T7oOJaMH27 RiT6QzNyymlatyIUEdDkX2s+lIkCAwEAAaOCAdYwggHSMB0GA1UdDgQWBBQrE/GY oBJ5NTQydNs1tKl+K5EkJzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MDAwMi5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAlBggrBgEFBQcBBwEB/wQWMBQw EgQCAAEwDAMEAGeUTgMEAMt3DTANBgkqhkiG9w0BAQsFAAOCAQEASG5omrmu0m6P oNZp04ESGLEmMRilz1s+xkI/YOTNpMzAgy0ZGBp1aO51uNxiMeqv7kSlAbsMwU79 KZmDWZtRdtgwtW7WiOEHMorHfROJu1eYyJyn3wDciRi1WEdqc6PL0Ace3mAsDeVO +FwwrvGS2C7oYucNJRs1k/J4L+0EK01gQw9DTnzCIX/5y/uRvJyITR1VS6uSk0eL GKFJZW+t8RAbMNGjuoim/4mVFCC/w0sD8qvEuCwHaJIzfsuExkFoLsHxQyMY1GBe 61nnUHrAtoGnIzRoU/wH+ImsUmdampihNM/Wnql/NfrxMEegEo79EHVP7xS+zcwh 920pE4E2cQ== -----END CERTIFICATE-----Generated at Tue May 7 16:42:39 2024 by rpki-client on console-ams.rpki-client.org